High security settings in IE causes problems

[ahksar]

I have a weblog,where a user can post comments after logging in. The login works fine when the security settings in Internet Explorer are set to medium or lower, but once the security settings are high, the user is able to log in but is returned to the login screen again and again. COuld anyone help?

Thanks,
ahksar

 

[GunJack]

Hey Ahksar,

My guess is that IE is no longer sending the cookies. If you're storing the login information via session or client variables, just pass the cfid/cftoken pair in any link or form posting and it should work.

In application.cfm:
<cfset cfidStr=&quot;cfid=#cfid#&cftoken=#cftoken#&quot;>

In any other file:
<cfoutput>
<a href=&quot;MyPage.cfm?#cfidStr#&quot;>Link 1</a>
<form method=&quot;post&quot; action=&quot;Login.cfm?#cfidStr#&quot;>...</form>
</cfoutput>

The important thing to remember is that the cfid/token must be passed as url variables so forms can't pass them as hidden variables, they must be passed in the action attribute.

If this isn't the problem, just let me know,
GJ

 

[ahksar]

gunjack, the values were sent as hidden variables, it works fine now that im passing them through the urls..
thx for your help..
ahksar